7355eae2fbaac0a8d37341a4a34d21ae_JaffaCakes118 | Triage

Sharing

General

Target

7355eae2fbaac0a8d37341a4a34d21ae_JaffaCakes118
Size

104KB
MD5

7355eae2fbaac0a8d37341a4a34d21ae
SHA1

231c7f0efdea923873fd1c41f579da80ecedf956
SHA256

78cc7a70180af68ab30b769bd437927753f9394cecdca759a935567009db9cd7
SHA512

6a54e204ba732d3a87246b0ad1093dfe708aa1e38654c9c999d4f20270c97d4679f9a81962102abef4763841894a3603622ec7daebd23a98ad434b2be5efbde1
SSDEEP

3072:1JZKmDmXQvOHAKRD22ZNZgzUxudbFrJgiPzPsP+PS0sOJ41S:Hs0sOJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7355eae2fbaac0a8d37341a4a34d21ae_JaffaCakes118

Files

7355eae2fbaac0a8d37341a4a34d21ae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9bc04e29780f70d67c333157b6553ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord595
ord598
ord525
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord608
ProcCallEngine
ord100
ord616
ord581

Sections

.text
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ